0
0
Fork 0
mirror of https://github.com/matrix-org/dendrite synced 2024-12-24 18:53:46 +01:00
dendrite/docs
dependabot[bot] 9c826d064d
Bump activesupport from 6.0.5 to 6.0.6.1 in /docs (#2959)
Bumps [activesupport](https://github.com/rails/rails) from 6.0.5 to
6.0.6.1.
<details>
<summary>Release notes</summary>
<p><em>Sourced from <a
href="https://github.com/rails/rails/releases">activesupport's
releases</a>.</em></p>
<blockquote>
<h2>v6.0.6.1</h2>
<h2>Active Support</h2>
<ul>
<li>No changes.</li>
</ul>
<h2>Active Model</h2>
<ul>
<li>No changes.</li>
</ul>
<h2>Active Record</h2>
<ul>
<li>
<p>Make <code>sanitize_as_sql_comment</code> more strict</p>
<p>Though this method was likely never meant to take user input, it was
attempting sanitization. That sanitization could be bypassed with
carefully crafted input.</p>
<p>This commit makes the sanitization more robust by replacing any
occurrances of &quot;/<em>&quot; or &quot;</em>/&quot; with &quot;/
<em>&quot; or &quot;</em> /&quot;. It also performs a
first pass to remove one surrounding comment to avoid compatibility
issues for users relying on the existing removal.</p>
<p>This also clarifies in the documentation of annotate that it should
not
be provided user input.</p>
<p>[CVE-2023-22794]</p>
</li>
</ul>
<h2>Action View</h2>
<ul>
<li>No changes.</li>
</ul>
<h2>Action Pack</h2>
<ul>
<li>No changes.</li>
</ul>
<h2>Active Job</h2>
<ul>
<li>No changes.</li>
</ul>
<!-- raw HTML omitted -->
</blockquote>
<p>... (truncated)</p>
</details>
<details>
<summary>Commits</summary>
<ul>
<li><a
href="28bb76d3ef"><code>28bb76d</code></a>
Version 6.0.6.1</li>
<li><a
href="91cf62e7b4"><code>91cf62e</code></a>
Version 6.0.6</li>
<li><a
href="c7d64e91b6"><code>c7d64e9</code></a>
Preparing for 6.0.5.1 release</li>
<li><a
href="c177e45858"><code>c177e45</code></a>
updating version and changelog</li>
<li>See full diff in <a
href="https://github.com/rails/rails/compare/v6.0.5...v6.0.6.1">compare
view</a></li>
</ul>
</details>
<br />


[![Dependabot compatibility
score](https://dependabot-badges.githubapp.com/badges/compatibility_score?dependency-name=activesupport&package-manager=bundler&previous-version=6.0.5&new-version=6.0.6.1)](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores)

Dependabot will resolve any conflicts with this PR as long as you don't
alter it yourself. You can also trigger a rebase manually by commenting
`@dependabot rebase`.

[//]: # (dependabot-automerge-start)
[//]: # (dependabot-automerge-end)

---

<details>
<summary>Dependabot commands and options</summary>
<br />

You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits
that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after
your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge
and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating
it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop
Dependabot creating any more for this major version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop
Dependabot creating any more for this minor version (unless you reopen
the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop
Dependabot creating any more for this dependency (unless you reopen the
PR or upgrade to it yourself)
- `@dependabot use these labels` will set the current labels as the
default for future PRs for this repo and language
- `@dependabot use these reviewers` will set the current reviewers as
the default for future PRs for this repo and language
- `@dependabot use these assignees` will set the current assignees as
the default for future PRs for this repo and language
- `@dependabot use this milestone` will set the current milestone as the
default for future PRs for this repo and language

You can disable automated security fix PRs for this repo from the
[Security Alerts
page](https://github.com/matrix-org/dendrite/network/alerts).

</details>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2023-02-02 10:27:38 +01:00
..
_sass/custom New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
administration Fix reset password endpoint (#2921) 2022-12-22 11:54:03 +01:00
caddy Filter /members, return members at given point (#2827) 2022-10-25 12:39:10 +02:00
development Dendrite Documentation Fix (#2913) 2022-12-12 16:46:37 +00:00
hiawatha Filter /members, return members at given point (#2827) 2022-10-25 12:39:10 +02:00
images Add CI information to CONTRIBUTING.md (#778) 2019-08-07 11:46:36 +01:00
installation Fix Caddy config well-known delegation example (#2879) 2022-11-14 17:15:39 +00:00
nginx Filter /members, return members at given point (#2827) 2022-10-25 12:39:10 +02:00
other New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
systemd Update systemd example to set LimitNOFILE 2022-02-25 17:35:10 +00:00
_config.yml New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
administration.md New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
development.md New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
FAQ.md Add FAQs based on commonly asked questions from the community 2023-01-10 16:26:41 -07:00
Gemfile New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
Gemfile.lock Bump activesupport from 6.0.5 to 6.0.6.1 in /docs (#2959) 2023-02-02 10:27:38 +01:00
index.md Fix link 2022-05-11 15:46:45 +01:00
INSTALL.md New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00
installation.md New documentation: https://matrix-org.github.io/dendrite/ 2022-05-11 15:39:36 +01:00